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(57) ABSTRACT 

A method and apparatus to configure, monitor and manage 
network devices without regard for device type and/or 
manufacturer is disclosed. One implementation of this 
embodiment includes a network manager unit disposed 
I i n I i t I i I 

tically view, configure and manage an entire network with- 
out regard to device type and/or manufacturer. The admin- 
istrator can implement this holistic approach with the use of 
a central repository lor all configuration information and/or 
a central posting location for all network events. 
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SYSTEM AND METHOD FOR CONFIGURATION, 
MANAGEMENT AND MONITORING OF 
NETWORK RESOURCES 

FIELD OF THE INVENTION 

[0001] The present invention relates generally to network 
systems. More particularly, but not by way of limitation, the 
present invention relates to systems and methods for con- 



ges such as routers, optical devices and the lik 
BACKGROUND OF THE INVENTION 



con] 



ornately, the rapid growth in tot 
by businesses has outpaced the 
certain necessary network infrastructure components. One 
reason that the development at 
infrastructure has lagged behind ct 
difficulty in exp a: 

ing networks. Even me most routine network: expansions 
nil >! i I i ex;in le, rei|iiire signi lica nl, highly 

ucal mi a I ml lion hy trained rk adminis 

trators. Unfortiiiialel ll hid li im d network admin- 
istrators are in extremely short supply. Thus, many needed 
network e\pansioi e I e i i i laved or 

even completely avoided because of the inability to find the 
needed administrators to perform the required laborious. 

technical tasks. 

[0003] The present difficulty in configuring and reconfig- 
uring networks is best illustrated by an example directed 
loward installing a single new muter on an existing network. 
To install a new router (such as router 100 or 105 in FIG. 1), 
an administrator HO fust would need to choose a particular 



irs 110 often choose a r 



;vices from that manufacturer. Administrator: 
cample, may only know how to configure at 
;vices manufactured by Cisco Systems, Inc. 
/erlook equal or even superior devices from ot 



ill MM | After the administrator 110 has eh 
router (router 105, for example), the ac 
generally will ord» 



is within the network's policies and 



li the de\ ice -specific com- 
a Juniper™ router. Thus, if 
• include both Cisco™ and 
]iiired to 



[0006] ii I' i ii bi 

erealed for each of the identified network devices, 

commands must be manually transmitted to each devi 
established to each device and the particulaj commai 



[0007] Although some tools have been developed to help 
administrators perform certain ones of the laborious tasks of 
network management, these tools are extremely limited in 
their application, f or example. ( 'isco Works™ is a group of 
unrelated tools thai can aid administrators in some enterprise 
level tasks. ( 'isco Works' 1 ''' and similar tools provide singu- 
larly focused, unrelated tools to perform activities such as 
quality of service (QOS) provisioning and network policy 



ration can be installed. The administrator 110 then ships the 
router 105 to the installation site where it can be physically 
installed. After the router 105 has been physically installed, 
the administrator 110 typically is manually notified, e.g., by- 
telephone, that the router 105 is connected to the network. 
The administrator must then create the device-specific com- 
mands required to fully configure the router 105 and transfer 
those commands to the router's memory 115. After the 
administrator 110 verifies that the device -specific commands 
were installed correctly, the router 105 can be brought 




[0009] In addition to several other drawbacks, tin 
gularly focused network tools result m subsunidan 
detection and recovery. For example, in present sy 
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I. thes ,l i 

remote storage device 145 with an appro) 



DETAILED DESCRIPTION 



il. It is to be understood, he 



manager unit 140 disposed between the 
and the network devices 135, which can include routers, 
optical devices, etc. The net* oi 1 in unit 140 al 
connected to remote storage 145 (connected by network 
150) and a network manager support 155. 
[0028] To alter the configuration of a network device 135 
I, i ItO I k manager u Hit 



[i 140 c. 



described herein in i 
that there is on intention to limn Hie invention to the 
particular forms disclosed ( >ne skilled in the art can recog- 
nize that there are numerous modifications, equivalents and 
alternative constructions thai fall within the spirit and scope 
of the invention as expressed in the claims. 
[0027] Referring now to FIG. 2, there is illustrated a 
system 120 for contiiiurinc network devices 100, 105, 125, 
130 l llcclivch 135) i v ii villi II princi| I s ,1 



mponents running the Red Hat™ 
LINUX Operating System and the Sun Solaris™ UNIX 

ticular operating system. 

[0031] Referring now to FIG. 3, there is illustrated in 
more detail the network manager unit 140 shown in FIG. 2. 
This embodiment of the network manager unit 140 includes 
six basic modules, an interlace 160, a diieclory 165, a policy 
manager 170, an event bus 175, a health manager 180 and 
an action manager 185. The illustrated connections between 
the various components are exemplary only. The compo- 



the presently preferred en 



i ij I I Ihci lei 



than the one illustrated in FIG. 3. 

[0032] Referring first to the interface module 160, it is 

(shown in FIG. 2) and, in some embodiments, with the 
network devices 135 (also shown in FIG. 2). Although the 
interlace 160 could implement virlually nil v type of intei- 
i i i ' I iiii t i} l I e' 

rl il 111 

locols such as WAP (wireless application protocol). 
[0033] The second component of the network manager 

central posting location for receiving messages relating to 
network events. For example, when a configuration for a 
network device 135 is to he changed, an appropriate mes- 
sage can be published (or otherwise made available) to the 
event bus 175. Similarly, if a network condition such as an 
error occurs, an appropriate message can be published to the 

bus 175 can also be sent tothe adminfstrator 110 by way of 



needed to generate device-specific 
types, brands and/or models of : 
these templates can contain variable 
either information stored in the configuration records 
in t'oim alien input diieclly by the administrator, 'file nelwo 
manager unit 140 generates the device-specific comman 




le fields wi 



te configuratic 



111 I 1 II e 1 

including reconhgui in it 1 e shutting down a 
network device and notifying an administrator. 
[0035] fn operation, the policy manager 170 can read a 
me ige i isted to the event bus 175. Alternatively, the cvcnl 
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tically push the mess 
access the policy re 



he health of individual ne 



of these routers and determine the 
needed to enable them. The code re. 
Cisco™ router, for example, might be 
the code required to enable the Junip 



[0040] In further embodiments, the health manager can 

example, the health manager can monitor the operation of 
the event bus, the action manager and or the directory. 



[0036] In other e 

verify that the adm mist ralor III) (shown in I'IG. 2) h;is 
authority to make ehanges to network device'-, without 



[0037] Still referring in HC 3, ll 
network manager unit 140 includes ; 

devices connected to the network i 
example, the directory 165 could sli 
ration record for each of network de\ 
130 shown in FIG. 2. In certain 

systems, each directory can store a 
configuration records or a comple 
configuration records. Generally, sut 
employ multiple linked network mai 



0 (shown in FIG. 2) can initiate a search 
:e 160 and the results of that search can be made 
le to the administrator 110 through the interface 160. 



; used to enable directory-based networking. 



rnenl of the directory 165 consists of lour interconnected 
m- kIii lis: eonliguralioii si, .rage IS7. configuration compara- 
tor 19H eonliguralioii leader 195 and interface 200. The 

" " 1 5 3t need all of the modules to 

le principles of the present 

m reader module 195 of ilk direc- 
te with) a target nt 

actual configuration 
115 of router 105 (shown in FIG. 2). Ihis 
onfiguration can then be passed to the 
parator 190. The configuration reader 195 




oi 190. 



onfiguration and tin inte nfi i 1 

present the differences to the administrator 110 (shown in 
FIG. 2). In one embodiment, the differences in the configu- 
rations are not onlv presented literally, hut also in a natural 
language summary form. Once the differences have been 
identified, they can he used to identify a failed configuration 
installation and oi to ud the idmim-ti nor in creating the 
proper configuratiou for a device. 



FIG. 2. In or 



embodiment the configuration stt 



>e 1S7 is 



pn i nfigi 
vice By storing these previous configu- 
/ery and correction are vastly improved 
ms because prior, successful configura- 
an be quickly retrieved and used to replace new, faulty 
" >r example, a prior configuration of a 
previously known good state can be retrieved and installed 
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stem of claim 12, further comprising: 



ii ih in I i i' 

oneofthepluralit I i 



ponent. 
17. The system ■ 



a device-specific template storage module in communi- 
cation with the action manager, the device -specific 
template storage module configured to store a plurality 
i I <Ji eio -spt cilie command tempi ik 
20. The system of claim 19, wherein the action manager 
conligurcd [,., read a lirsi of the pluraliiy ofdcvicc-spceilic 
mplalcs from 1 he device -specific kinplale storage: module 



c the lirsi of llie plurality uf network 



lliguration storage module configured to store at least 
le configuration record for each of the plurality of 

l manager in 
tion storage module, tt 

records has been altered, and the action manager bt ' 
further configured to generate i device -specie o 
mand for a network device ineliided in I he pluralilv of 
network devices, wherein the network device corre- 
sponds to the first c 

22. The system of cla 
an event posting component configured to provide to thj 

action manager the indication that the first of th* 
configuration records has been altered. 

23. The system of claim 21, further 



ice-specific template storage module in communi- 
on with the action manager, the device-specific 
plate storage module configured to store a plurality 



tc-alh coupled wi 



the plurality of instructions configured to cause the at 
least a first processing element to perform the steps of: 
retrieving a configuration record from a common 
repository of configuration records, the retrieved 
configuration record being associated with the net- 




wherein llie conliguralioii ivcv.rd 

27. Thfsystem of claim 25, v 
processor to perform the step of: 
publishing a message to an event bus; 
wherein the published message indicates that the retrieved 



verifying that the modified configuration record complies 

with a network policy. 
29. The system of claim 28, wherein the plurality of 



processor to perform the step of: 

publishing a work order to an event bus in response to 
verifying that the modified configuration record com- 
plies with a network policy. 
30. The system of claim 28, wherein the plurality of 

instructions ire furl In eoi I o cause the at least a lirsi 

processor to perform the step of: 

verifying the successful completion of the step of trans- 
ferring the generated first device-specific command to 
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